Date: Sun, 10 May 2009 11:07:42 +0300 From: Octavian Ionescu <itavy@itavy.com> To: Darryl Hoar <darryl@osborne-ind.com> Cc: freebsd-questions@freebsd.org Subject: Re: Openvpn question Message-ID: <4A068B4E.9050605@itavy.com> In-Reply-To: <000001c9d0a0$8ecfd620$ac6f8260$@com> References: <000001c9d0a0$8ecfd620$ac6f8260$@com>
next in thread | previous in thread | raw e-mail | index | archive | help
Darryl Hoar wrote: > Installed Openvpn on my freebsd server. Had to revoke a certificate > already. The Openvpn howto guide says to add crl-verify crl.pem to the > server config script. Is that the openvpn server config script or the > openssl config script (I self generate certificates) ? > > Been googling and searching but can't find a definitive answer. > > Thanks and I know this is not strictly a Freebsd question. > > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" read this, http://openvpn.net/index.php/documentation/howto.html#revoke you have to revoke the certificate(s) using the scripts and adding "crl-verify crl.pem" to the server configuration file. first time when you add that line you have to restart the openvpn daemon, afterthat it will check every time the crl.pem to see if the certificate is revoked or not. -- Best regards, Octavian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4A068B4E.9050605>